[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fJR6xlEDIPrEIPCWJFeH_EuK90G4bgcxoCNPsInzt_lw":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":177,"crawl_stats":37,"alternatives":185,"analysis":281,"fingerprints":615},"easy-social-icons","Easy Social Icons","4.0.2","CyberNetikz","https:\u002F\u002Fprofiles.wordpress.org\u002Fcybernetikz\u002F","\u003Cp>You can upload your own social icon or font-awesome social icons, set your social URL, choose whether you want to display vertically or horizontally, left or right or center aligned, icon width height or margins.\u003C\u002Fp>\n\u003Ch3>Easy Social Icons: THE #1 WordPress Social Icons Plugin\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Boost your social presence with the most user-friendly and customizable social icons plugin for WordPress.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Easy Social Icons\u003C\u002Fstrong> is the ultimate solution for adding beautiful, fully customizable social media icons to your WordPress site—no coding required. Whether you’re a blogger, business owner, or developer, this lightweight plugin makes it easy to connect your audience with your social media platforms in just a few clicks.\u003C\u002Fp>\n\u003Cp>Easy Social Icons Free gives you everything you need to manage and display your social icons, while the \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwww.cybernetikz.com\u002Fstore\u002F\" rel=\"nofollow ugc\">Easy Social Icons Premium\u003C\u002Fa>\u003C\u002Fstrong> version unlocks advanced features, tools, and extended functionality.\u003C\u002Fp>\n\u003Cp>You can use the shortcode \u003Cstrong>[cn-social-icon]\u003C\u002Fstrong> in page\u002Fpost, template tag for PHP file, \u003Cstrong>\u003C?php if ( function_exists(‘cn_social_icon’) ) echo cn_social_icon(); ?>\u003C\u002Fstrong> also you can use the widget \u003Cstrong>“Easy Social Icons”\u003C\u002Fstrong> for the sidebar.\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FfO3OHkRE9PM?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>If you are using \u003Cstrong>wordpress version lower than 3.5\u003C\u002Fstrong> please use “Easy Social Icons” version\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasy-social-icons.1.1.zip\" rel=\"nofollow ugc\">1.1\u003C\u002Fa>\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwww.cybernetikz.com\u002Fcontact\u002F\" rel=\"nofollow ugc\">For faster support please contact us here.\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>Cover original color for 100+ font-awesome brand icons\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch4>FREE FEATURES\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>You can upload your own social icons, set URL for that icon with sort order, target windows etc.\u003C\u002Fli>\n\u003Cli>Or select font icons from font-awesome (Cover original color for 100+ font-awesome brand icons)\u003C\u002Fli>\n\u003Cli>Create multiple icons set using widget with different settings\u003C\u002Fli>\n\u003Cli>Use multiple shortcode in page\u002Fpost with different settings\u003C\u002Fli>\n\u003Cli>Use multiple PHP template tag in PHP themes files with different settings\u003C\u002Fli>\n\u003Cli>Works with responsive website\u003C\u002Fli>\n\u003Cli>You will get add\u002Fedit\u002Fdelete option for icons\u003C\u002Fli>\n\u003Cli>You can set the icon width and height to fit in your template\u002Fdesign perfectly\u003C\u002Fli>\n\u003Cli>You can display your social share icons vertically or horizontally to match perfectly with your template\u002Fdesign.\u003C\u002Fli>\n\u003Cli>You can put your social icon set in the sidebar using the widget\u003C\u002Fli>\n\u003Cli>You can insert your social icon set in pages\u002Fposts using shortcode\u003C\u002Fli>\n\u003Cli>Sort social media icons using drag drop\u003C\u002Fli>\n\u003Cli>Also if you are familiar with PHP code then you can use the template tag to place the social icon set anywhere in the PHP template file\u003C\u002Fli>\n\u003Cli>Google Social Profile Links feature added, so if someone search your website\u002Fblog in google it will show your social icons also.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>PREMIUM FEATURES\u003C\u002Fh4>\n\u003Cp>Unlock even more power and customization with the Premium version of Easy Social Icons!\u003C\u002Fp>\n\u003Ch4>Advanced Customization Options\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Icon Customization:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Custom icon styles (shadow, gradient, 3D effect).\u003Cbr \u002F>\n* Advanced hover effects (animations, color transitions).\u003Cbr \u002F>\n* Entrance and hover animations (bounce, fade, zoom).\u003Cbr \u002F>\n* Different icon shapes (hexagonal, triangle, etc.).\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Icon Size Variability:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Responsive scaling options for different screen sizes. ( Add pixel size for Tab and Mobile )\u003Cbr \u002F>\n* Custom pixel-based size selection.\u003C\u002Fp>\n\u003Ch4>Premium Icon Sets\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Access to exclusive high-quality icon libraries.\u003C\u002Fli>\n\u003Cli>Custom-designed icons that match different website themes.\u003C\u002Fli>\n\u003Cli>Regular updates with new social media platform icons.\u003C\u002Fli>\n\u003Cli>Add SVG icon\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Performance Optimization\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Lightweight and optimized icons to improve page speed.\u003C\u002Fli>\n\u003Cli>Lazy loading for social icons to enhance performance.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Multiple Icon Placement Options\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Sticky floating social icons (left, right, bottom, etc.).\u003C\u002Fli>\n\u003Cli>Inline placement within content with shortcodes.\u003C\u002Fli>\n\u003Cli>Widget-specific placement with enhanced control.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Additional Social Icon\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Added all social font awesome icon in the list.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Social Icon show with Text\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Display social media icons alongside their corresponding text labels for better clarity and accessibility.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Multi-site support with social icon\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Social icons supported across all networked sites.\u003C\u002Fli>\n\u003Cli>Centralized social sharing control for WordPress networks.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Social Sharing Enhancements\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>One-click social sharing buttons for posts and pages.\u003C\u002Fli>\n\u003Cli>Social share count display.\u003C\u002Fli>\n\u003Cli>Predefined sharing templates with customizable styles.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Plus, enjoy \u003Cstrong>priority support\u003C\u002Fstrong> and \u003Cstrong>regular updates\u003C\u002Fstrong> for enhanced security and compatibility.\u003C\u002Fp>\n\u003Ch3>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwww.cybernetikz.com\u002Fstore\u002F\" rel=\"nofollow ugc\">Get Easy Social Icons Premium\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fh3>\n\u003Cp>Please visit our site \u003Ca href=\"http:\u002F\u002Fwww.cybernetikz.com\u002F\" rel=\"nofollow ugc\">www.cybernetikz.com\u002F\u003C\u002Fa>\u003C\u002Fp>\n","Upload your own social media icons or choose from font-awesome. Use widget|shortcode to place icons anywhere(sidebar, header, footer, page) in theme.",20000,1364123,88,84,"2025-11-09T19:41:00.000Z","6.8.5","3.5","",[20,4,21,22,23],"easy-social-icon","follow-us","social-icons","social-share","http:\u002F\u002Fwww.cybernetikz.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasy-social-icons.4.0.2.zip",96,12,0,"2023-11-23 00:00:00","2026-03-15T15:16:48.613Z",[32,48,60,73,85,94,104,117,130,141,150,163],{"id":33,"url_slug":34,"title":35,"description":36,"plugin_slug":4,"theme_slug":37,"affected_versions":38,"patched_in_version":39,"severity":40,"cvss_score":41,"cvss_vector":42,"vuln_type":43,"published_date":29,"updated_date":44,"references":45,"days_to_patch":47},"CVE-2023-48336","easy-social-icons-authenticated-contributor-stored-cross-site-scripting-via-shortcode","Easy Social Icons \u003C= 3.2.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via shortcode","The Easy Social Icons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode(s) in all versions up to, and including, 3.2.4 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers with contributor-level and above permissions to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",null,"\u003C=3.2.4","3.2.5","medium",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2024-01-22 19:56:02",[46],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fab888ee1-bdc2-4b8b-9b16-a7d146f123df?source=api-prod",61,{"id":49,"url_slug":50,"title":51,"description":52,"plugin_slug":4,"theme_slug":37,"affected_versions":38,"patched_in_version":39,"severity":40,"cvss_score":53,"cvss_vector":54,"vuln_type":55,"published_date":56,"updated_date":44,"references":57,"days_to_patch":59},"CVE-2023-33998","easy-social-icons-missing-authorization-via-cnsssaveajaxorder","Easy Social Icons \u003C= 3.2.4 - Missing Authorization via cnss_save_ajax_order","The Easy Social Icons plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the cnss_save_ajax_order function in versions up to, and including, 3.2.4. This makes it possible for authenticated attackers, with subscriber-level access and above, to change the order of social icons.",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Missing Authorization","2023-11-07 00:00:00",[58],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fc3bdc0c4-34fb-43cc-ba2b-340347bca146?source=api-prod",77,{"id":61,"url_slug":62,"title":63,"description":64,"plugin_slug":4,"theme_slug":37,"affected_versions":65,"patched_in_version":66,"severity":40,"cvss_score":67,"cvss_vector":68,"vuln_type":43,"published_date":69,"updated_date":44,"references":70,"days_to_patch":72},"WF-7dfa84ed-0edf-4a75-8ec3-986c3880353c-easy-social-icons","easy-social-icons-admin-cross-site-scripting","Easy Social Icons \u003C= 3.1.4 - Admin+ Cross-Site Scripting","The Easy Social Icons plugin for WordPress is vulnerable to admin-level stored Cross-Site Scripting due to missing sanitization on several variables in versions up to, and including, 3.1.4.","\u003C=3.1.4","3.2.0",5.5,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:H\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","2022-04-11 00:00:00",[71],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F7dfa84ed-0edf-4a75-8ec3-986c3880353c?source=api-prod",652,{"id":74,"url_slug":75,"title":76,"description":77,"plugin_slug":4,"theme_slug":37,"affected_versions":78,"patched_in_version":79,"severity":80,"cvss_score":81,"cvss_vector":82,"vuln_type":55,"published_date":69,"updated_date":44,"references":83,"days_to_patch":72},"WF-cc4f2fd3-ed6b-4fe4-b300-02b1b35ebb7b-easy-social-icons","easy-social-icons-authenticated-admin-cross-site-scripting-and-missing-authorization-checks","Easy Social Icons \u003C= 3.2.0 - Authenticated (Admin+) Cross-Site Scripting and Missing Authorization Checks","The Easy Social Icons plugin for WordPress is vulnerable to Admin+ cross-site scripting and unauthenticated icon deletion in versions up to and including 3.2.0.","\u003C=3.2.0","3.2.1","high",7.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:L\u002FI:L\u002FA:L",[84],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fcc4f2fd3-ed6b-4fe4-b300-02b1b35ebb7b?source=api-prod",{"id":86,"url_slug":87,"title":88,"description":89,"plugin_slug":4,"theme_slug":37,"affected_versions":90,"patched_in_version":91,"severity":40,"cvss_score":67,"cvss_vector":68,"vuln_type":43,"published_date":69,"updated_date":44,"references":92,"days_to_patch":72},"WF-cca16945-f230-4d0d-9f40-eabd5bf42e30-easy-social-icons","easy-social-icons-admin-cross-site-scripting-2","Easy Social Icons \u003C= 3.2.2 - Admin+ Cross-Site Scripting","The Easy Social Icons plugin for WordPress was vulnerable to admin+ stored Cross-Site Scripting due to missing sanitization on a few parameters in versions up to, and including, 3.2.2.","\u003C=3.2.2","3.2.3",[93],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fcca16945-f230-4d0d-9f40-eabd5bf42e30?source=api-prod",{"id":95,"url_slug":96,"title":97,"description":98,"plugin_slug":4,"theme_slug":37,"affected_versions":99,"patched_in_version":79,"severity":40,"cvss_score":67,"cvss_vector":68,"vuln_type":43,"published_date":100,"updated_date":44,"references":101,"days_to_patch":103},"CVE-2022-0840","easy-social-icons-admin-stored-cross-site-scripting","Easy Social Icons \u003C= 3.2.0 - Admin+ Stored Cross-Site Scripting","The Easy Social Icons WordPress plugin before 3.2.1 does not properly escape the image_file field when adding a new social icon, allowing high privileged users to inject arbitrary javascript even when the unfiltered_html capability is disallowed.","\u003C3.2.1","2022-03-21 00:00:00",[102],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fc59871cc-2d62-4eea-a78b-19810570c47d?source=api-prod",673,{"id":105,"url_slug":106,"title":107,"description":108,"plugin_slug":4,"theme_slug":37,"affected_versions":109,"patched_in_version":110,"severity":40,"cvss_score":67,"cvss_vector":111,"vuln_type":112,"published_date":113,"updated_date":44,"references":114,"days_to_patch":116},"CVE-2022-0887","easy-social-icons-admin-sql-injection","Easy Social Icons \u003C= 3.1.3 - Admin+ SQL Injection","The Easy Social Icons WordPress plugin before 3.1.4 does not sanitize the selected_icons attribute to the cnss_widget before using it in an SQL statement, leading to a SQL injection vulnerability.","\u003C=3.1.3","3.1.4","CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:H\u002FUI:N\u002FS:U\u002FC:H\u002FI:L\u002FA:N","Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')","2022-03-08 00:00:00",[115],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F97c7b0bc-4c73-4330-851a-2d6d6d0b62c9?source=api-prod",686,{"id":118,"url_slug":119,"title":120,"description":121,"plugin_slug":4,"theme_slug":37,"affected_versions":122,"patched_in_version":123,"severity":40,"cvss_score":124,"cvss_vector":125,"vuln_type":43,"published_date":126,"updated_date":44,"references":127,"days_to_patch":129},"WF-86c3ef76-d4d0-4106-850f-88e9ea176979-easy-social-icons","easy-social-icons-reflected-cross-site-scripting-2","Easy Social Icons \u003C= 3.1.2 - Reflected Cross-Site Scripting","The Easy Social Icons plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via several parameters in versions up to, and including, 3.1.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.","\u003C=3.1.2","3.1.3",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","2021-09-02 00:00:00",[128],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F86c3ef76-d4d0-4106-850f-88e9ea176979?source=api-prod",873,{"id":131,"url_slug":132,"title":133,"description":134,"plugin_slug":4,"theme_slug":37,"affected_versions":135,"patched_in_version":136,"severity":40,"cvss_score":124,"cvss_vector":125,"vuln_type":43,"published_date":137,"updated_date":44,"references":138,"days_to_patch":140},"WF-1f38aca5-0d69-421e-a3f2-d12cd593a88a-easy-social-icons","easy-social-icons-reflected-cross-site-scripting","Easy Social Icons \u003C= 3.0.9 - Reflected Cross-Site Scripting","The Easy Social Icons plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via multiple parameters in versions up to, and including, 3.0.9 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.","\u003C=3.0.9","3.1.0","2021-09-01 00:00:00",[139],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F1f38aca5-0d69-421e-a3f2-d12cd593a88a?source=api-prod",874,{"id":142,"url_slug":143,"title":144,"description":145,"plugin_slug":4,"theme_slug":37,"affected_versions":146,"patched_in_version":147,"severity":40,"cvss_score":124,"cvss_vector":125,"vuln_type":43,"published_date":137,"updated_date":44,"references":148,"days_to_patch":140},"CVE-2021-39322","easy-social-icons-reflected-cross-site-scripting-3","Easy Social Icons \u003C= 3.0.8 – Reflected Cross-Site Scripting","The Easy Social Icons plugin \u003C= 3.0.8 for WordPress echoes out the raw value of `$_SERVER['PHP_SELF']` in its main file. On certain configurations including Apache+modPHP this makes it possible to use it to perform a reflected Cross-Site Scripting attack by injecting malicious code in the request path.","\u003C=3.0.8","3.0.9",[149],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F8ef3a657-28ce-4a27-b4d8-617db8027ffc?source=api-prod",{"id":151,"url_slug":152,"title":153,"description":154,"plugin_slug":4,"theme_slug":37,"affected_versions":155,"patched_in_version":156,"severity":80,"cvss_score":157,"cvss_vector":158,"vuln_type":112,"published_date":159,"updated_date":44,"references":160,"days_to_patch":162},"WF-feab189a-bd89-461d-b553-f137b8032e94-easy-social-icons","easy-social-icons-sql-injection","Easy Social Icons \u003C= 1.2.3.1 - SQL Injection","The Easy Social Icons plugin for WordPress is vulnerable to generic SQL Injection via the ‘id’ parameter in versions up to, and including, 1.2.3.1 due to insufficient escaping on the user-supplied parameter and lack of sufficient preparation on the existing SQL query.  This makes it possible for authenticated Admin+ attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.","\u003C=1.2.3.1","1.2.4",7.2,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:H\u002FUI:N\u002FS:U\u002FC:H\u002FI:H\u002FA:H","2015-07-22 00:00:00",[161],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Ffeab189a-bd89-461d-b553-f137b8032e94?source=api-prod",3107,{"id":164,"url_slug":165,"title":166,"description":167,"plugin_slug":4,"theme_slug":37,"affected_versions":168,"patched_in_version":169,"severity":80,"cvss_score":170,"cvss_vector":171,"vuln_type":172,"published_date":173,"updated_date":44,"references":174,"days_to_patch":176},"CVE-2015-2084","easy-social-icons-cross-site-request-forgery-to-stored-cross-site-scripting","Easy Social Icons \u003C= 1.2.2 - Cross-Site Request Forgery to Stored Cross-Site Scripting","Cross-site request forgery (CSRF) vulnerability in the Easy Social Icons plugin before 1.2.3 for WordPress allows remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting (XSS) attacks via the image_file parameter in an edit action in the cnss_social_icon_add page to wp-admin\u002Fadmin.php.","\u003C=1.2.2","1.2.3",8.8,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:H\u002FI:H\u002FA:H","Cross-Site Request Forgery (CSRF)","2015-02-19 00:00:00",[175],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Ff00a12ed-d8c2-40b2-b0c8-71507469ee95?source=api-prod",3260,{"slug":178,"display_name":7,"profile_url":8,"plugin_count":179,"total_installs":180,"avg_security_score":181,"avg_patch_time_days":182,"trust_score":183,"computed_at":184},"cybernetikz",5,31020,98,967,78,"2026-04-04T05:39:41.976Z",[186,211,229,246,265],{"slug":187,"name":188,"version":189,"author":190,"author_profile":191,"description":192,"short_description":193,"active_installs":194,"downloaded":195,"rating":196,"num_ratings":197,"last_updated":198,"tested_up_to":16,"requires_at_least":199,"requires_php":200,"tags":201,"homepage":206,"download_link":207,"security_score":208,"vuln_count":209,"unpatched_count":28,"last_vuln_date":210,"fetched_at":30},"share-button","Social Share Buttons","1.20","maxfoundry","https:\u002F\u002Fprofiles.wordpress.org\u002Fmaxfoundry\u002F","\u003Cp>Social Share Buttons is the share button addon to \u003Ca href=\"https:\u002F\u002Fmaxbuttons.com\u002F?utm_source=repowp1&utm_medium=mbrepo&utm_content=mbr_maxbuttons&utm_campaign=mbr_maxbuttons\" rel=\"nofollow ugc\">MaxButtons\u003C\u002Fa>.  It lets you easily setup and use social buttons on your home page, pages, and posts.\u003C\u002Fp>\n\u003Cp>Social Share Buttons gets you going in a minute with our beautifully designed presets. The plugin supports all popular networks:\u003C\u002Fp>\n\u003Cp>Facebook, Twitter, Instagram, Pinterest, Linkedin, YouTube, Pinterest, StumbleUpon, Reddit, Whatsapp, Buffer and more\u003C\u002Fp>\n\u003Cp>( PRO version allows more networks, we take requests! )\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Customize layout. Choose a preset, customize to your liking.\u003C\u002Fli>\n\u003Cli>Customizable Tweet options. Pick your global #hashtag or customize per post\u003C\u002Fli>\n\u003Cli>Link (URL) Share options to optimize your sharing and SEO strategy\u003C\u002Fli>\n\u003Cli>Display options: Hide or Show on different part of your site\u003C\u002Fli>\n\u003Cli>Layout and Style options\u003C\u002Fli>\n\u003Cli>Display share count and Total share count\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>PRO Features\u003C\u002Fh4>\n\u003Cp>You get the PRO features for \u003Cem>free\u003C\u002Fem> is you have a license for \u003Ca href=\"https:\u002F\u002Fmaxbuttons.com\u002F?utm_source=repowp1&utm_medium=mbrepo&utm_content=mbr_maxbuttons&utm_campaign=mbr_maxbuttons\" rel=\"nofollow ugc\">MaxButtons PRO\u003C\u002Fa>.  Features include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Network editor – Change preferences of your networks.\u003C\u002Fli>\n\u003Cli>Multiple groups – Have different icons to match the feel of your site\u003C\u002Fli>\n\u003Cli>More Networks – Add more networks including Xing, Telegram, Etsy, Pocket and more\u003C\u002Fli>\n\u003Cli>Add your MaxButtons to your Social Icons\u003C\u002Fli>\n\u003Cli>Define Twitter Hashtags per post or pages\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>MaxButtons is the most used WordPress button, share button and social icon plugin with over 3.5 million downloads and 1000 5 star reviews.\u003C\u002Fp>\n\u003Cp>Max Foundry also makes the WordPress Gallery plugin \u003Ca href=\"https:\u002F\u002Fmaxgalleria.com\" rel=\"nofollow ugc\">MaxGalleria\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fmaxgalleria.com\u002Fdownloads\u002Fmedia-library-plus-pro\u002F\" rel=\"nofollow ugc\">WordPress Media Folders\u003C\u002Fa> plugin for real WordPress Media Library folders and \u003Ca href=\"https:\u002F\u002Fwelcomemat.io\" rel=\"nofollow ugc\">Welcome Mat Pro\u003C\u002Fa>.\u003C\u002Fp>\n","Our Share Button addon to MaxButtons and MaxButtons Pro plugins gets you up and sharing within minutes. It's easy to setup and offers flexibility &hellip;",1000,54195,94,27,"2025-09-17T07:31:00.000Z","4.8","7.0",[202,22,203,204,205],"facebook","twitter","wordpress-share-buttons","wordpress-social-share","http:\u002F\u002Fmaxbuttons.com\u002Fshare-button","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshare-button.1.20.zip",99,1,"2024-10-18 00:00:00",{"slug":212,"name":213,"version":214,"author":215,"author_profile":216,"description":217,"short_description":218,"active_installs":194,"downloaded":219,"rating":13,"num_ratings":179,"last_updated":220,"tested_up_to":200,"requires_at_least":221,"requires_php":200,"tags":222,"homepage":226,"download_link":227,"security_score":228,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"share-social-media","Social Icons Sticky","1.7.6","ScriptsTown","https:\u002F\u002Fprofiles.wordpress.org\u002Fscriptstown\u002F","\u003Cp>\u003Cstrong>Social Icons Sticky\u003C\u002Fstrong> plugin adds social media sharing icons to your WordPress website. The plugin adds social share icons to posts or pages of your WordPress site and allows visitors to share the content of a post or page on various social media sites. It automatically picks the featured image, post title, and meta description of the page for sharing it depending on the social media platform.\u003C\u002Fp>\n\u003Cp>You can choose which social icons to enable for the sticky or content area. It supports multiple icon placement positions. It includes quick options to place social icons before and after the page\u002Fpost content. Also, you can place sticky icons on the right or left side of your WordPress site.\u003C\u002Fp>\n\u003Cp>Social sharing icons are a crucial aspect of WordPress website design, \u003Cstrong>SEO\u003C\u002Fstrong>, and functionality. Having social sharing icons allows users to easily share content from your website on their own social media profiles. The content can also include links back to your WordPress site. This can result in increased website traffic, interaction, and, ultimately, brand awareness.\u003C\u002Fp>\n\u003Cp>Furthermore, including social sharing icons on your website can help to improve your search engine optimization, visibility, and reach of your website, as well as your online presence and reputation.\u003C\u002Fp>\n\u003Ch3>Social Icons Sticky Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fscriptstown.com\u002Fwordpress-plugins\u002Fshare-social-media\u002F\" rel=\"nofollow ugc\">Social Icons Sticky Features\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Social Icons\u003C\u002Fstrong> to Page or Post\u003C\u002Fli>\n\u003Cli>Place Icons Before or After Content\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Sticky\u003C\u002Fstrong> Social Share Icons\u003C\u002Fli>\n\u003Cli>Popular Social Media Icons\u003C\u002Fli>\n\u003Cli>Customize \u003Cstrong>Social Sharing\u003C\u002Fstrong> Icons\u003C\u002Fli>\n\u003Cli>Multiple Icons Placements\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Icons Design\u003C\u002Fstrong> Settings\u003C\u002Fli>\n\u003C\u002Ful>\n","Add social sharing icons to a post or page of your WordPress website and allow visitors to share your content on various social media sites.",108535,"2026-03-08T22:01:00.000Z","5.0",[22,223,23,224,225],"social-media","social-sharing","sticky-icons","https:\u002F\u002Fscriptstown.com\u002Fwordpress-plugins\u002Fshare-social-media\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshare-social-media.1.7.6.zip",100,{"slug":230,"name":231,"version":232,"author":233,"author_profile":234,"description":235,"short_description":236,"active_installs":228,"downloaded":237,"rating":28,"num_ratings":28,"last_updated":238,"tested_up_to":16,"requires_at_least":239,"requires_php":240,"tags":241,"homepage":18,"download_link":245,"security_score":228,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"advance-social-icons","Advanced Social icons","3.6","Galaxy Weblinks","https:\u002F\u002Fprofiles.wordpress.org\u002Fgalaxyweblinks\u002F","\u003Cp>Advanced social icons help you quickly add icons with links to your profiles on different social media platforms. The plugin uses icons from Font Awesome, which gives you the possibility to display various popular social icons via widgets. You can use custom icons to add links to anything you want.\u003C\u002Fp>\n\u003Cp>No configuration is necessary, other than having links to your social media profiles in the built-in WordPress menus. Add links to any of these social sites under Appearance > Menus, then enable the plugin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Supported Sites\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>bitbucket.org           dribbble.com         dropbox.com\nfacebook.com            flickr.com           foursquare.com\ngithub.com              gittip.com           instagram.com\nlinkedin.com            mailto:(email)       pinterest.com\nplus.google.com         renren.com           stackoverflow.com\ntrello.com              tumblr.com           twitter.com          \nvk.com                  weibo.com            xing.com\nyoutube.com\n\n* Requires asi_latest_social_icons be turned on. (See below.)\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>Option: Icon Sizes\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>To vary icon sizes, add this to your theme’s \u003Cstrong>functions.php\u003C\u002Fstrong> file: (Default is 2x)\u003C\u002Fp>\n\u003Cpre>\u003Ccode>add_filter( 'asi_social_icons_size', function(){return \"normal\"; } );\nadd_filter( 'asi_social_icons_size', function(){return \"large\"; } );\nadd_filter( 'asi_social_icons_size', function(){return \"2x\"; } );\nadd_filter( 'asi_social_icons_size', function(){return \"3x\"; } );\nadd_filter( 'asi_social_icons_size', function(){return \"4x\"; } );\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>Option: Add More Icons\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Add icons from \u003Ca href=\"http:\u002F\u002Ffortawesome.github.io\u002FFont-Awesome\u002F\" rel=\"nofollow ugc\">FontAwesome\u003C\u002Fa> for other URLs. For example, an RSS feed:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>add_filter( 'asi_networks_social_icons', 'asi_networks_social_icons');\nfunction asi_networks_social_icons( $networks ) {\n\n    $extra_icons = array (\n        '\u002Ffeed' => array(                  \u002F\u002F Enable this icon for any URL containing this text\n            'name' => 'RSS',               \u002F\u002F Default menu item label\n            'class' => 'rss',              \u002F\u002F Custom class\n            'icon' => 'icon-rss',          \u002F\u002F FontAwesome class\n            'icon-sign' => 'icon-rss-sign' \u002F\u002F May not be available. Check FontAwesome.\n        ),\n    );\n\n    $extra_icons = array_merge( $networks, $extra_icons );\n    return $extra_icons;\n}\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch3>Features and Options\u003C\u002Fh3>\n\u003Cp>Supports FontAwesome icons.\u003Cbr \u002F>\nSupport custom icons\u003Cbr \u002F>\nDrag and drop for icon sorting.\u003Cbr \u002F>\nOption to easily change icon size.\u003Cbr \u002F>\nMore features coming on updates.\u003C\u002Fp>\n\u003Cp>Here’s a link to the documentation for the plugin. This will help you learn more about its features and how to use it.\u003Cbr \u002F>\n\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwp-plugins.galaxyweblinks.com\u002Fwp-plugins\u002Fadvanced-social-icons\u002Fdoc\u002F\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\nFor any feedback or queries regarding this plugin, please contact our \u003Ca href=\"https:\u002F\u002Fwp-plugins.galaxyweblinks.com\u002Fcontact\u002F\" rel=\"nofollow ugc\">Support team\u003C\u002Fa>.\u003C\u002Fp>\n","Advanced social icons help you quickly add icons with links to your profile on different social media platforms.",5077,"2025-04-24T05:34:00.000Z","4.9","7.4",[242,243,244,223,23],"advanced-social-icons","custom-social-icons","font-awesome-social-widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvance-social-icons.3.6.zip",{"slug":247,"name":248,"version":249,"author":250,"author_profile":251,"description":252,"short_description":253,"active_installs":254,"downloaded":255,"rating":228,"num_ratings":256,"last_updated":257,"tested_up_to":258,"requires_at_least":221,"requires_php":200,"tags":259,"homepage":263,"download_link":264,"security_score":228,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"super-simple-social-share-icons","Super Simple Social Share Icons","1.0.2","Volt Blocks","https:\u002F\u002Fprofiles.wordpress.org\u002Fjamesvolt87\u002F","\u003Cp>Super Simple Social Share Icons provides an elegant and efficient way to add social sharing functionality to your WordPress site. With a focus on performance and user experience, this plugin offers customizable sharing buttons for popular social networks.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Clean, modern design with multiple style options\u003C\u002Fli>\n\u003Cli>Support for major social networks (Facebook, X\u002FTwitter, LinkedIn, Pinterest, WhatsApp, Bluesky)\u003C\u002Fli>\n\u003Cli>Customizable button styles (Brand colors, Light, Dark, Custom)\u003C\u002Fli>\n\u003Cli>Flexible positioning (Above content, Below content, or Both)\u003C\u002Fli>\n\u003Cli>Shortcode support for custom placement\u003C\u002Fli>\n\u003Cli>Adjustable icon sizes and spacing\u003C\u002Fli>\n\u003Cli>Mobile-friendly and responsive design\u003C\u002Fli>\n\u003Cli>No external dependencies or tracking scripts\u003C\u002Fli>\n\u003Cli>Lightweight and performance-focused\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Supported Networks\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Facebook\u003C\u002Fli>\n\u003Cli>X (formerly Twitter)\u003C\u002Fli>\n\u003Cli>LinkedIn\u003C\u002Fli>\n\u003Cli>Pinterest\u003C\u002Fli>\n\u003Cli>WhatsApp\u003C\u002Fli>\n\u003Cli>Bluesky\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>For support please visit:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fvoltblocks.com\u002Fcontact\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fvoltblocks.com\u002Fcontact\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>For documentation visit:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fvoltblocks.com\u002Fdocumentation\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fvoltblocks.com\u002Fdocumentation\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Support the development:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.buymeacoffee.com\u002Fvoltblocks\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.buymeacoffee.com\u002Fvoltblocks\u003C\u002Fa>\u003C\u002Fp>\n","A lightweight and powerful solution for adding beautiful social sharing buttons to your WordPress site.",60,1008,2,"2025-09-04T10:22:00.000Z","6.7.5",[260,261,22,223,262],"facebook-share","share-buttons","social-share-icons","https:\u002F\u002Fvoltblocks.com\u002Fplugins\u002Fsuper-simple-social-share-icons","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsuper-simple-social-share-icons.1.0.2.zip",{"slug":266,"name":267,"version":268,"author":269,"author_profile":270,"description":271,"short_description":272,"active_installs":273,"downloaded":274,"rating":228,"num_ratings":209,"last_updated":275,"tested_up_to":276,"requires_at_least":221,"requires_php":200,"tags":277,"homepage":18,"download_link":280,"security_score":228,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"dp-easy-social-share","DP Easy Social Share","1.1.2","divyangprajapati","https:\u002F\u002Fprofiles.wordpress.org\u002Fdivyangprajapati\u002F","\u003Cp>DP Easy Social Share is a simple and lightweight social sharing plugin for WordPress. With an easy-to-use interface and customizable options, you can add social sharing buttons to your posts, pages and custom post types effortlessly. Enhance your content’s reach by enabling your visitors to share your posts on their favorite social networks.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Easy-to-Use Interface:\u003C\u002Fstrong> Configure your social sharing settings through an intuitive admin settings page.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customizable Icons:\u003C\u002Fstrong> Choose from a selection of icons via checkboxes including Facebook, X, LinkedIn, WhatsApp, Reddit, Pinterest, and Email.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Flexible Display:\u003C\u002Fstrong> Set the social icons to appear above or below your content.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multi-Post Type Support:\u003C\u002Fstrong> Specify which post types display the social share icons.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lightweight & Fast:\u003C\u002Fstrong> Designed to add social sharing functionality without slowing down your site.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Responsive Design:\u003C\u002Fstrong> Social icons adjust seamlessly for mobile and desktop viewing.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>This plugin uses Font Awesome to provide social media icons for sharing posts and pages. Font Awesome is a third-party icon library that is included to enhance the visual presentation of social icons.\u003C\u002Fp>\n\u003Cp>** Font Awesome **\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>What the service is and what it is used for:\u003C\u002Fstrong>\u003Cbr \u002F>\nThe plugin uses Font Awesome to display SVG icons for various social media platforms such as Facebook, X (formerly Twitter), LinkedIn, WhatsApp, Reddit, Pinterest, Email and more.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>What data is sent and when:\u003C\u002Fstrong>\u003Cbr \u002F>\nNo personal data is sent from the user’s website to Font Awesome. The icons are embedded locally in the plugin, and no external calls to Font Awesome servers are made.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Terms of Use and Privacy Policy:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ffontawesome.com\u002Flicense\u002Ffree\" rel=\"nofollow ugc\">Font Awesome Terms of Use\u003C\u002Fa>  \u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ffontawesome.com\u002Fprivacy\" rel=\"nofollow ugc\">Font Awesome Privacy Policy\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>DP Easy Social Share is released under the GPLv3 license. This means you are free to use, modify, and distribute the software as long as you comply with the license terms. See \u003Ca href=\"https:\u002F\u002Fwww.gnu.org\u002Flicenses\u002Fgpl-3.0.txt\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.gnu.org\u002Flicenses\u002Fgpl-3.0.txt\u003C\u002Fa> for more details.\u003C\u002Fp>\n","A lightweight, customizable social sharing plugin for WordPress that adds social icons to your posts, pages and custom post types.",40,764,"2025-12-03T13:02:00.000Z","6.9.4",[278,279,22,223,23],"sharing","social","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdp-easy-social-share.1.1.2.zip",{"attackSurface":282,"codeSignals":347,"taintFlows":528,"riskAssessment":594,"analyzedAt":614},{"hooks":283,"ajaxHandlers":333,"restRoutes":340,"shortcodes":341,"cronEvents":346,"entryPointCount":256,"unprotectedCount":28},[284,290,294,298,301,305,309,313,317,320,325,328,331],{"type":285,"name":286,"callback":287,"file":288,"line":289},"action","admin_post_cnss_rollback_plugin","cnss_handle_rollback_plugin","easy-social-icons.php",102,{"type":285,"name":291,"callback":292,"file":288,"line":293},"admin_notices","closure",151,{"type":285,"name":295,"callback":296,"file":288,"line":297},"init","cnss_init_script",166,{"type":285,"name":295,"callback":299,"file":288,"line":300},"cnss_process_post",167,{"type":285,"name":302,"callback":303,"file":288,"line":304},"admin_init","cnss_delete_icon",168,{"type":285,"name":306,"callback":307,"file":288,"line":308},"admin_menu","cnss_add_menu_pages",170,{"type":285,"name":310,"callback":311,"file":288,"line":312},"wp_head","cnss_social_profile_links_fn",171,{"type":285,"name":314,"callback":315,"file":288,"line":316},"admin_enqueue_scripts","cnss_admin_style",172,{"type":285,"name":314,"callback":318,"file":288,"line":319},"cnss_admin_enqueue",175,{"type":321,"name":322,"callback":323,"file":288,"line":324},"filter","upload_mimes","allow_svg_uploads",207,{"type":285,"name":302,"callback":326,"file":288,"line":327},"cnss_register_settings",457,{"type":285,"name":329,"callback":292,"file":288,"line":330},"widgets_init",2104,{"type":285,"name":329,"callback":292,"file":288,"line":332},2108,[334],{"action":335,"nopriv":336,"callback":337,"hasNonce":338,"hasCapCheck":338,"file":288,"line":339},"update-social-icon-order",false,"cnss_save_ajax_order",true,169,[],[342],{"tag":343,"callback":344,"file":288,"line":345},"cn-social-icon","cn_social_icon",181,[],{"dangerousFunctions":348,"sqlUsage":349,"outputEscaping":367,"fileOperations":209,"externalRequests":256,"nonceChecks":179,"capabilityChecks":256,"bundledLibraries":527},[],{"prepared":350,"raw":350,"locations":351},6,[352,355,357,361,363,365],{"file":288,"line":353,"context":354},976,"$wpdb->get_var() with variable interpolation",{"file":288,"line":356,"context":354},1022,{"file":358,"line":359,"context":360},"uninstall.php",36,"$wpdb->query() with variable interpolation",{"file":358,"line":362,"context":360},37,{"file":358,"line":364,"context":360},47,{"file":358,"line":366,"context":360},48,{"escaped":368,"rawEcho":369,"locations":370},184,90,[371,374,376,378,380,382,384,386,388,390,392,394,396,398,399,401,403,405,407,409,411,413,415,417,419,421,423,425,427,429,431,433,435,437,439,441,442,444,445,446,448,450,452,453,454,455,457,458,459,460,461,462,463,464,466,468,469,471,472,474,475,477,479,481,483,485,487,488,490,492,493,495,497,498,500,502,503,505,507,509,510,512,514,515,517,519,520,522,523,524],{"file":288,"line":372,"context":373},156,"raw output",{"file":288,"line":375,"context":373},296,{"file":288,"line":377,"context":373},420,{"file":288,"line":379,"context":373},432,{"file":288,"line":381,"context":373},436,{"file":288,"line":383,"context":373},542,{"file":288,"line":385,"context":373},565,{"file":288,"line":387,"context":373},566,{"file":288,"line":389,"context":373},574,{"file":288,"line":391,"context":373},575,{"file":288,"line":393,"context":373},576,{"file":288,"line":395,"context":373},619,{"file":288,"line":397,"context":373},638,{"file":288,"line":72,"context":373},{"file":288,"line":400,"context":373},653,{"file":288,"line":402,"context":373},655,{"file":288,"line":404,"context":373},676,{"file":288,"line":406,"context":373},918,{"file":288,"line":408,"context":373},929,{"file":288,"line":410,"context":373},1142,{"file":288,"line":412,"context":373},1170,{"file":288,"line":414,"context":373},1171,{"file":288,"line":416,"context":373},1180,{"file":288,"line":418,"context":373},1194,{"file":288,"line":420,"context":373},1409,{"file":288,"line":422,"context":373},1442,{"file":288,"line":424,"context":373},1457,{"file":288,"line":426,"context":373},1463,{"file":288,"line":428,"context":373},1469,{"file":288,"line":430,"context":373},1501,{"file":288,"line":432,"context":373},1561,{"file":288,"line":434,"context":373},1569,{"file":288,"line":436,"context":373},1580,{"file":288,"line":438,"context":373},1615,{"file":288,"line":440,"context":373},1618,{"file":288,"line":440,"context":373},{"file":288,"line":443,"context":373},1621,{"file":288,"line":443,"context":373},{"file":288,"line":443,"context":373},{"file":288,"line":447,"context":373},1634,{"file":288,"line":449,"context":373},1677,{"file":288,"line":451,"context":373},1683,{"file":288,"line":451,"context":373},{"file":288,"line":451,"context":373},{"file":288,"line":451,"context":373},{"file":288,"line":456,"context":373},1825,{"file":288,"line":456,"context":373},{"file":288,"line":456,"context":373},{"file":288,"line":456,"context":373},{"file":288,"line":456,"context":373},{"file":288,"line":456,"context":373},{"file":288,"line":456,"context":373},{"file":288,"line":456,"context":373},{"file":288,"line":465,"context":373},1933,{"file":288,"line":467,"context":373},1935,{"file":288,"line":467,"context":373},{"file":288,"line":470,"context":373},1937,{"file":288,"line":470,"context":373},{"file":288,"line":473,"context":373},1941,{"file":288,"line":473,"context":373},{"file":288,"line":476,"context":373},1969,{"file":288,"line":478,"context":373},1971,{"file":288,"line":480,"context":373},1972,{"file":288,"line":482,"context":373},1973,{"file":288,"line":484,"context":373},2010,{"file":288,"line":486,"context":373},2011,{"file":288,"line":486,"context":373},{"file":288,"line":489,"context":373},2016,{"file":288,"line":491,"context":373},2017,{"file":288,"line":491,"context":373},{"file":288,"line":494,"context":373},2033,{"file":288,"line":496,"context":373},2034,{"file":288,"line":496,"context":373},{"file":288,"line":499,"context":373},2040,{"file":288,"line":501,"context":373},2041,{"file":288,"line":501,"context":373},{"file":288,"line":504,"context":373},2048,{"file":288,"line":506,"context":373},2053,{"file":288,"line":508,"context":373},2054,{"file":288,"line":508,"context":373},{"file":288,"line":511,"context":373},2057,{"file":288,"line":513,"context":373},2058,{"file":288,"line":513,"context":373},{"file":288,"line":516,"context":373},2084,{"file":288,"line":518,"context":373},2085,{"file":288,"line":518,"context":373},{"file":288,"line":521,"context":373},2088,{"file":288,"line":521,"context":373},{"file":288,"line":521,"context":373},{"file":525,"line":526,"context":373},"social-share.php",9,[],[529,547,582],{"entryPoint":530,"graph":531,"unsanitizedCount":28,"severity":546},"cnss_social_icon_option_fn (easy-social-icons.php:493)",{"nodes":532,"edges":544},[533,538],{"id":534,"type":535,"label":536,"file":288,"line":537},"n0","source","$_POST",843,{"id":539,"type":540,"label":541,"file":288,"line":542,"wp_function":543},"n1","sink","echo() [XSS]",853,"echo",[545],{"from":534,"to":539,"sanitized":338},"low",{"entryPoint":548,"graph":549,"unsanitizedCount":28,"severity":546},"\u003Ceasy-social-icons> (easy-social-icons.php:0)",{"nodes":550,"edges":577},[551,554,555,558,560,564,569,572],{"id":534,"type":535,"label":552,"file":288,"line":553},"$_GET (x13)",153,{"id":539,"type":540,"label":541,"file":288,"line":372,"wp_function":543},{"id":556,"type":535,"label":557,"file":288,"line":537},"n2","$_POST (x2)",{"id":559,"type":540,"label":541,"file":288,"line":542,"wp_function":543},"n3",{"id":561,"type":535,"label":562,"file":288,"line":563},"n4","$_GET",1380,{"id":565,"type":540,"label":566,"file":288,"line":567,"wp_function":568},"n5","get_row() [SQLi]",1382,"get_row",{"id":570,"type":535,"label":571,"file":288,"line":563},"n6","$_GET (x2)",{"id":573,"type":540,"label":574,"file":288,"line":575,"wp_function":576},"n7","get_results() [SQLi]",1662,"get_results",[578,579,580,581],{"from":534,"to":539,"sanitized":338},{"from":556,"to":559,"sanitized":338},{"from":561,"to":565,"sanitized":338},{"from":570,"to":573,"sanitized":338},{"entryPoint":583,"graph":584,"unsanitizedCount":209,"severity":80},"cnss_social_icon_add_fn (easy-social-icons.php:1287)",{"nodes":585,"edges":591},[586,587,588,590],{"id":534,"type":535,"label":562,"file":288,"line":563},{"id":539,"type":540,"label":566,"file":288,"line":567,"wp_function":568},{"id":556,"type":535,"label":589,"file":288,"line":563},"$_GET (x7)",{"id":559,"type":540,"label":541,"file":288,"line":422,"wp_function":543},[592,593],{"from":534,"to":539,"sanitized":336},{"from":556,"to":559,"sanitized":338},{"summary":595,"deductions":596},"The security posture of easy-social-icons v4.0.2 presents a mixed bag of good practices and significant concerns.  While the plugin demonstrates some strengths, such as a relatively contained attack surface with no explicitly unprotected entry points in the static analysis and a decent percentage of SQL queries using prepared statements, the overall picture is marred by a concerning vulnerability history.  The presence of 12 known CVEs, including a substantial number of high and medium severity vulnerabilities in the past, suggests a pattern of recurring security weaknesses.  Furthermore, the static analysis reveals a flow with an unsanitized path and a high-severity taint flow, which are immediate red flags indicating potential for exploitation.",[597,600,603,605,607,610,612],{"reason":598,"points":599},"High severity taint flow detected",15,{"reason":601,"points":602},"Flow with unsanitized path detected",10,{"reason":604,"points":602},"50% of SQL queries not using prepared statements",{"reason":606,"points":350},"33% of output not properly escaped",{"reason":608,"points":609},"12 total known CVEs in history",18,{"reason":611,"points":599},"3 high severity historical CVEs",{"reason":613,"points":526},"9 medium severity historical CVEs","2026-03-16T17:28:17.747Z",{"wat":616,"direct":635},{"assetPaths":617,"generatorPatterns":625,"scriptPaths":626,"versionParams":627},[618,619,620,621,622,623,624],"\u002Fwp-content\u002Fplugins\u002Feasy-social-icons\u002Fassets\u002Fcss\u002Fcnss-font.css","\u002Fwp-content\u002Fplugins\u002Feasy-social-icons\u002Fassets\u002Fcss\u002Fcnss.css","\u002Fwp-content\u002Fplugins\u002Feasy-social-icons\u002Fassets\u002Fcss\u002Fcnss-style.css","\u002Fwp-content\u002Fplugins\u002Feasy-social-icons\u002Fassets\u002Fjs\u002Fcnss.js","\u002Fwp-content\u002Fplugins\u002Feasy-social-icons\u002Fassets\u002Fjs\u002Fcnss-custom.js","\u002Fwp-content\u002Fplugins\u002Feasy-social-icons\u002Fassets\u002Fjs\u002Fbackend\u002Fcnss-backend.js","\u002Fwp-content\u002Fplugins\u002Feasy-social-icons\u002Fassets\u002Fjs\u002Ffrontend\u002Fcnss-frontend.js",[],[621,622,623,624],[628,629,630,631,632,633,634],"easy-social-icons\u002Fassets\u002Fcss\u002Fcnss-font.css?ver=","easy-social-icons\u002Fassets\u002Fcss\u002Fcnss.css?ver=","easy-social-icons\u002Fassets\u002Fcss\u002Fcnss-style.css?ver=","easy-social-icons\u002Fassets\u002Fjs\u002Fcnss.js?ver=","easy-social-icons\u002Fassets\u002Fjs\u002Fcnss-custom.js?ver=","easy-social-icons\u002Fassets\u002Fjs\u002Fbackend\u002Fcnss-backend.js?ver=","easy-social-icons\u002Fassets\u002Fjs\u002Ffrontend\u002Fcnss-frontend.js?ver=",{"cssClasses":636,"htmlComments":643,"htmlAttributes":645,"restEndpoints":648,"jsGlobals":649,"shortcodeOutput":652},[637,638,639,640,641,642],"cnss-social-icon-container","cnss-social-icon","cnss-social-icon-text","cnss_admin_banner","pro-ads","pro-ads-feature",[644],"\u003C!-- Easy Social Icons Premium Advantage -->",[646,647],"data-icon-id","data-icon-order",[],[650,651],"cnss_order_data","cnss_admin_obj",[653],"[cn-social-icon]"]